light_mode “Let your light shine before others.” — Matthew 5:16 (NET)

Christ-honoring DNS filtering

Bright, simple protection for the Church, families, and every believer.

GraceDNS connects your devices to safe, Christ-honoring filtering through secure internet links that work quietly in the background. There’s nothing to install and no hardware to manage—just simple, private protection for anyone who wants a wholesome online home.

See the tiers Read the mission

We do not keep logs of what you look up. Everything is handled over secure, encrypted connections, so your browsing stays private.

church

The Church

Easy, printable instructions help congregations protect every device without technical staff.

family_restroom

Families

Parents can set one tier on the home router, and every phone, TV, and tablet follows automatically.

person

Individuals

Any believer can point their phone or laptop to GraceDNS in under a minute with our simple guides.

Why we serve

Keeping the Church, families, and individuals holy, hopeful, and simple

GraceDNS exists for pastors, parents, and everyday believers who want a wholesome online experience without complicated tools. We clear away harmful websites and distractions so hearts can rest in Christ, both online and offline.

volunteer_activism

Serve the Church

Simple guides help ministries keep their networks safe without needing technical staff.

family_restroom

Equip Families

Three gentle filtering paths let parents choose what fits their home and their convictions.

person

Empower Individuals

Every believer can set up GraceDNS on a single device using clear, step-by-step prompts.

school

Guide Classrooms

Small schools and co-ops can assign the right filter to each room with straightforward instructions.

Plans for every household

Choose the path that fits

Each tier builds on the one before it. Just copy the DNS-over-HTTPS (DoH) address or the DNS-over-TLS (DoT) name, and place it in your device’s settings. The device will then use GraceDNS automatically.

Which path/filter/tier is right for me?

Pick the option that sounds most like your home or ministry. We’ll show you the correct setup links and instructions.

spa

Eden

A gentle starting point that blocks harmful websites, scams, and unwanted tracking, while keeping daily browsing working just as expected.

  • Blocks known harmful and misleading sites
  • Quietly reduces unwanted tracking
  • Keeps breakage low and browsing smooth
lock

Use this secure link whenever your device asks for a DNS-over-HTTPS address.

dns

Use this name for devices that ask for DNS-over-TLS.

language

Primary IPv4

language

Secondary IPv4

lan

Primary IPv6

lan

Secondary IPv6

Use these only if your device cannot use secure DNS options above.

ios_share Download iOS profile
church

Sinai

Builds on Eden with firm protections against explicit content, gambling, illicit downloads, and sites meant to bypass filters. SafeSearch is always on.

  • Blocks explicit and gambling content
  • Prevents most filter-avoidance sites
  • lock Forces SafeSearch for major engines
lock

Use this secure link for Sinai’s protections.

dns

Use this name for devices that ask for DNS-over-TLS.

language

Primary IPv4

language

Secondary IPv4

lan

Primary IPv6

lan

Secondary IPv6

Use these only if your device cannot use the secure options above.

ios_share Download iOS profile
temple_buddhist

Zion

Builds on Sinai with a strong sweep against advertising and attention-grabbing content, helping keep screens peaceful and focused.

  • Blocks ads and distraction-heavy content
  • Keeps all protections from earlier tiers
  • Encourages a calm, distraction-free experience
lock

Use this link for Zion’s enhanced protections.

dns

Use this name for Zion on devices that use TLS.

language

Primary IPv4

language

Secondary IPv4

lan

Primary IPv6

lan

Secondary IPv6

Use these IPs only when secure DNS is not available.

ios_share Download iOS profile
light_mode

Glory

Our most thorough tier, designed for highly controlled environments. It silences nearly all tracking and referral systems, but may require occasional adjustments when apps expect these systems to work.

  • Most thorough blocking available
  • Some apps may need patience or allowlisting
  • Best for locked-down installs with supervision
lock

Use this link for Glory’s strict filtering.

dns

Use this name for devices that ask for DNS-over-TLS.

language

Primary IPv4

language

Secondary IPv4

lan

Primary IPv6

lan

Secondary IPv6

Use these only if secure DNS options are unavailable.

ios_share Download iOS profile

Setup in minutes

How to use GraceDNS

GraceDNS works over secure, private connections that most devices already understand. Just copy the address for your chosen tier and place it where your device asks for it. The guides below keep things simple and step-by-step.

phone_android

Android (Private DNS / DoT)

  1. Open Settings → Network & Internet.
  2. Find Private DNS (location varies by model).
  3. Select “Private DNS provider hostname”.
  4. Enter the DNS-over-TLS name for your tier (example: sinai.gracedns.org).

Older Android devices may need a simple app to use the DNS-over-HTTPS link instead.

phone_iphone

iOS & iPadOS

  1. Tap the Download iOS profile button for your tier.
  2. Choose Allow when asked.
  3. Open Settings → Profile Downloaded.
  4. Install the profile and enter your passcode if prompted.
  5. Your device will now use GraceDNS automatically.

You can switch tiers any time by installing a new profile.

laptop_mac

macOS & visionOS

  1. Download or AirDrop the tier’s profile to your Mac.
  2. Open it and click Install.
  3. Enter your password to confirm.
  4. Your Mac will now use GraceDNS on all networks.

Ideal for family computers and shared home laptops.

laptop_windows

Windows 10/11

  1. Download the small helper program from our guide.
  2. Open it and follow the simple prompts.
  3. Windows will then use GraceDNS privately and securely.

The helper runs quietly in the background and needs no upkeep.

router

Home routers

  1. Open your router’s settings page (usually printed on the router).
  2. Find the place where it asks for a DNS address or server name.
  3. Paste the GraceDNS link or hostname for your tier.
  4. Save your settings.

Every device in your home will now follow the chosen tier.

school

Chromebooks & shared devices

  1. Your school or organization can set the profile once.
  2. All student or shared devices will follow GraceDNS automatically.
  3. Switching tiers is as simple as updating the profile.

Great for small schools, co-ops, or multiuser environments.

Glory is very strict and may cause some apps to need special allowance. Keep Sinai or Eden available as needed.

Clear convictions

What we filter

spa

Eden

  • Blocks harmful or misleading websites
  • Stops scam and trick pages
  • Reduces unwanted tracking
  • Removes nuisance ads tied to harmful sources
church

Sinai

  • Everything in Eden
  • Explicit content
  • Gambling sites
  • Illicit downloads and piracy hubs
  • Sites that try to bypass filters
  • SafeSearch always on
auto_stories

Zion

  • Everything in Sinai
  • Full-spectrum ad networks
  • Push notifications and tracking campaigns
  • Cross-app tracking systems
shield_lock

Glory

  • Everything in Zion
  • Nearly all telemetry and referral systems
  • Very strict sweep across tracking sources
  • Expect occasional breakage

Rooted in Scripture

One promise for Eden, Sinai, Zion, and Glory

“Whatever you do, in word or deed, do it all in the name of the Lord Jesus.”

This call from Colossians 3:17 guides every decision we make for the Church, for families, and for each believer who uses GraceDNS.

Colossians 3:17 (NET)

Support the mission

GraceDNS stays free because the Body shares the load

GraceDNS exists to serve—not to profit. If you feel led to help cover hosting and the time spent maintaining our filters, a simple gift goes a long way. Consider $5/year for an individual, $15/year for a household, or $3/student/year for schools. Give what fits your situation, or nothing at all.

Adds new blocklists
Keeps servers running smoothly
Helps small churches

GraceDNS is not a non-profit, so gifts are not tax-deductible and cannot be refunded. Stripe sends a receipt immediately.

Need a custom invoice? Email us.

Need clarity?

Frequently asked questions

What’s the difference between tiers?

Eden gives general protection against harmful or misleading sites. Sinai adds protection against explicit content, gambling, piracy, and filter-bypass sites. Zion removes most ads and attention-grabbing tracking. Glory is the most thorough, blocking nearly all tracking systems, but may require some app allowances.

Will ad blocking break anything?

Possibly. Some apps and websites expect certain tracking or ads to load. Zion may interrupt these occasionally; Glory even more so. If something stops working, simply switch to Sinai or Eden.

Which tier should families start with?

Most homes should begin with Sinai for strong, family-friendly protections. Use Eden for devices that must remain very stable. Zion is ideal for prayer rooms, chapels, or study spaces. Glory is best for heavily supervised devices.

What data do you see?

We only see enough information to answer your question about a website, and we immediately discard it. We do not keep logs, sell data, or track your browsing. Everything is handled over secure connections.

How do I switch tiers?

Just replace the DoH or DoT address in your device settings or install a new profile. Most devices switch within a few seconds.

Is this only for churches?

Not at all. GraceDNS is free for homes, churches, individuals, and small schools.

Stewardship

GraceDNS is owned by Ole Brook Web Services

Ole Brook Web Services, based in Mississippi, builds helpful tools for churches and small businesses. GraceDNS is one of our offerings to the wider Body of Christ.

Visit olebrookwebservices.com
Copied to clipboard.